Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer
File: y8ZgM3D76EzM4GToT08m7b7CZ7E.cer (raw, json)
Hash identifier: OEBlFOkWbkJe7lRkA9KaesZUMkLnsLJm0mOoO0qZZ70=
Subject key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 61F1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 07 Feb 2025 02:42:15 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 161.248.118.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25073 (0x61f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 7 02:42:15 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91D9CA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:e2:0d:2f:e1:92:53:53:ba:cf:31:a5:fe:07:
4d:f1:4d:ab:04:b9:a9:3a:02:b1:48:19:bc:a0:4d:
47:92:d3:8a:14:6a:52:a5:17:6c:1e:b6:cc:37:3f:
fd:31:14:14:46:31:16:37:f6:5c:c2:73:21:33:ef:
5a:ff:3d:0e:a9:90:c2:2f:3b:8f:69:d4:33:48:84:
ef:a9:b7:8b:51:9d:46:b5:b1:e8:28:f3:5e:14:c0:
9c:5c:cd:be:ca:74:7a:a6:dd:31:3b:9b:74:be:d3:
d7:cf:f8:b8:05:a7:d0:0d:48:a4:ce:5d:a5:71:b1:
a0:61:05:30:fd:92:4a:87:a3:a2:d7:bf:b5:4d:4a:
cf:a0:95:f1:f3:f0:89:a9:aa:c8:f7:3d:2d:a8:a3:
d2:b5:72:df:f2:4b:4c:a4:f6:69:fd:71:1f:70:07:
56:12:23:78:49:7e:e0:20:57:b7:13:14:c5:ec:d0:
69:f2:e4:23:15:d9:dc:ee:c8:3a:16:22:98:c7:24:
83:d8:e6:03:6c:b9:52:5b:0f:83:79:de:df:a1:72:
b3:b0:f6:f2:c8:7d:f3:97:e2:47:48:76:6d:19:69:
17:37:6e:d5:a6:fe:af:09:0e:71:3c:25:d4:d7:b4:
49:57:ab:1f:3b:ca:2a:36:d1:5b:d9:72:02:d0:bb:
a4:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.118.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:57:d3:fd:19:7e:ed:4b:d5:3c:2b:55:14:96:aa:ce:2b:c1:
5c:29:7d:20:ec:8a:68:9b:a9:02:dc:13:69:81:bf:34:1a:f0:
d7:9a:08:63:c9:e4:ee:55:a3:8d:74:47:c3:a6:1c:be:2d:b9:
13:a0:29:d4:08:6e:61:8d:7d:c6:6e:98:a6:3c:65:47:90:a2:
d6:83:3c:00:d9:10:11:42:5c:ee:cb:3f:7d:ea:92:0e:15:1d:
19:c4:6a:57:1e:9f:60:b4:3a:43:d8:cf:1c:91:23:40:01:1e:
b6:6d:0d:74:f7:37:08:e9:1e:ca:da:13:4b:f2:24:20:4f:fe:
44:2c:97:02:55:b1:dd:3d:a1:0d:cd:bf:3b:cd:99:1d:36:84:
eb:8e:08:69:40:a9:67:a5:a6:0e:64:5f:70:e8:8f:2c:5e:0f:
b8:42:fc:94:d2:1e:70:28:a2:65:76:07:1d:33:26:aa:b1:fe:
5b:71:f0:fe:b6:31:50:2f:16:a0:6c:f6:4d:04:df:51:fe:2e:
ad:b7:37:b1:58:68:f5:71:1e:a4:59:1a:a5:72:0f:30:be:c5:
e3:5f:54:b2:74:9d:dd:fe:6e:44:a4:d0:cd:13:28:74:fd:ef:
d6:85:c1:e3:98:17:d9:80:e0:e1:18:21:d9:ea:7c:d4:51:80:
bf:ea:df:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:40:28 2025 by rpki-client